Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251481	7.5	危険	アドバンテック株式会社	-	複数の Advantech OPC Server 製品の OPC Server ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1914	2012-02-23 10:38	2012-02-21	Show	GitHub Exploit DB Packet Storm

251482	10	危険	Novell	-	Windows 上で稼働する Novell iPrint Client におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4187	2012-02-23 10:02	2012-02-9	Show	GitHub Exploit DB Packet Storm

251483	9.3	危険	Novell	-	Windows 上で稼働する Novell iPrint Client におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4186	2012-02-23 10:01	2012-02-9	Show	GitHub Exploit DB Packet Storm

251484	10	危険	Novell	-	Windows 上で稼働する Novell iPrint Client における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-4185	2012-02-23 10:01	2012-02-9	Show	GitHub Exploit DB Packet Storm

251485	6	警告	Pluck CMS	-	pluck の admin.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1227	2012-02-22 16:26	2012-02-21	Show	GitHub Exploit DB Packet Storm

251486	6.8	警告	Antonio de Vincentiis	-	GAzie の modules/config/admin_utente.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1220	2012-02-22 16:24	2012-02-21	Show	GitHub Exploit DB Packet Storm

251487	4.3	警告	freelancerKit	-	freelancerKit におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1219	2012-02-22 16:18	2012-02-21	Show	GitHub Exploit DB Packet Storm

251488	7.5	危険	freelancerKit	-	freelancerKit における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1218	2012-02-22 16:15	2012-02-21	Show	GitHub Exploit DB Packet Storm

251489	4.3	警告	Zenphoto	-	Zenphoto におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0995	2012-02-22 16:12	2012-02-21	Show	GitHub Exploit DB Packet Storm

251490	6	警告	Zenphoto	-	Zenphoto の Manage Albums 機能における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0994	2012-02-22 16:09	2012-02-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248281	5.5	MEDIUM Local	long_range_zip_project	long_range_zip	The bufRead::get() function in libzpaq/libzpaq.h in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted archive.	CWE-369 Divide By Zero	CVE-2017-8842	2024-11-21 12:34	2017-05-8	Show	GitHub Exploit DB Packet Storm

248282	6.1	MEDIUM Network	zen-cart	zen_cart	Zen Cart 1.6.0 has XSS in the main_page parameter to index.php. NOTE: 1.6.0 is not an official release but the vendor's README.md file offers a link to v160.zip with a description of "Download latest…	CWE-79 Cross-site Scripting	CVE-2017-8833	2024-11-21 12:34	2017-05-8	Show	GitHub Exploit DB Packet Storm

248283	6.1	MEDIUM Network	allen_disk_project	allen_disk	Allen Disk 1.6 has XSS in the id parameter to downfile.php.	CWE-79 Cross-site Scripting	CVE-2017-8832	2024-11-21 12:34	2017-05-8	Show	GitHub Exploit DB Packet Storm

248284	6.4	MEDIUM Physics	linux canonical debian	linux_kernel ubuntu_linux debian_linux	The saa7164_bus_get function in drivers/media/pci/saa7164/saa7164-bus.c in the Linux kernel through 4.11.5 allows local users to cause a denial of service (out-of-bounds array access) or possibly hav…	CWE-125 Out-of-bounds Read	CVE-2017-8831	2024-11-21 12:34	2017-05-8	Show	GitHub Exploit DB Packet Storm

248285	6.5	MEDIUM Network	imagemagick	imagemagick	In ImageMagick 7.0.5-6, the ReadBMPImage function in bmp.c:1379 allows attackers to cause a denial of service (memory leak) via a crafted file.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-8830	2024-11-21 12:34	2017-05-8	Show	GitHub Exploit DB Packet Storm

248286	7.8	HIGH Local	debian	lintian	Deserialization vulnerability in lintian through 2.5.50.3 allows attackers to trigger code execution by requesting a review of a source package with a crafted YAML file.	CWE-502 Deserialization of Untrusted Data	CVE-2017-8829	2024-11-21 12:34	2017-05-8	Show	GitHub Exploit DB Packet Storm

248287	9.1	CRITICAL Network	genixcms	genixcms	forgotpassword.php in GeniXCMS 1.0.2 lacks a rate limit, which might allow remote attackers to cause a denial of service (login inability) or possibly conduct Arbitrary User Password Reset attacks vi…	CWE-287 Improper Authentication	CVE-2017-8827	2024-11-21 12:34	2017-05-8	Show	GitHub Exploit DB Packet Storm

248288	7.5	HIGH Network	gnu	glibc	The xdr_bytes and xdr_string functions in the GNU C Library (aka glibc or libc6) 2.25 mishandle failures of buffer deserialization, which allows remote attackers to cause a denial of service (virtual…	CWE-502 Deserialization of Untrusted Data	CVE-2017-8804	2024-11-21 12:34	2017-05-8	Show	GitHub Exploit DB Packet Storm

248289	6.1	MEDIUM Network	trendmicro	officescan	Trend Micro OfficeScan 11.0 before SP1 CP 6325 (with Agent Module Build before 6152) and XG before CP 1352 has XSS via a crafted URI using a blocked website.	CWE-79 Cross-site Scripting	CVE-2017-8801	2024-11-21 12:34	2017-05-6	Show	GitHub Exploit DB Packet Storm

248290	9.8	CRITICAL Network	irods	irods	Untrusted input execution via igetwild in all iRODS versions before 4.1.11 and 4.2.1 allows other iRODS users (potentially anonymous) to execute remote shell commands via iRODS virtual pathnames. To …	CWE-78 OS Command	CVE-2017-8799	2024-11-21 12:34	2017-05-6	Show	GitHub Exploit DB Packet Storm